Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
File: Otu0daQwTIRTQ_2U_ummuIAI44s.mft (raw, json)
Hash identifier: Mpi2/SnY3e2Sps9/KinYD/5IiUkuLi/RHG2v4O3HY90=
Subject key identifier: 00:CA:3B:F2:A3:F2:56:6D:81:1A:EC:1E:9D:8E:63:E6:C5:43:D5:F4
Authority key identifier: 3A:DB:B4:75:A4:30:4C:84:53:43:FD:94:FE:E9:A6:B8:80:08:E3:8B
Certificate issuer: /CN=3adbb475a4304c845343fd94fee9a6b88008e38b
Certificate serial: 019922FAE4C13FCDAC6ED23FCED589A4CFA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
Manifest number: 38
Signing time: Sun 07 Sep 2025 07:01:31 +0000
Manifest this update: Sun 07 Sep 2025 07:01:31 +0000
Manifest next update: Mon 08 Sep 2025 07:01:31 +0000
Files and hashes: 1: DVUSZ4Wn0WYyKumEhUgsl46ROFc.roa (hash: XFlMm/wUVW8+vc0BV0GxtZswisL8d+xkAL7tq7JpJlQ=)
2: Otu0daQwTIRTQ_2U_ummuIAI44s.crl (hash: NbZyZ9CqVcZR0iBFcQOypayQV28Sh4qrVxbhn0U+DJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:e4:c1:3f:cd:ac:6e:d2:3f:ce:d5:89:a4:cf:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adbb475a4304c845343fd94fee9a6b88008e38b
Validity
Not Before: Sep 7 07:01:31 2025 GMT
Not After : Sep 8 07:01:31 2025 GMT
Subject: CN=00ca3bf2a3f2566d811aec1e9d8e63e6c543d5f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d8:c7:8c:fb:14:4f:5b:85:99:41:19:eb:9f:
c8:02:fc:e1:04:8b:e8:83:67:d9:55:e5:8d:f2:bf:
59:3c:df:df:0b:23:a7:0c:c0:3d:a2:ef:e3:40:d5:
0f:bf:82:fa:80:44:18:f8:af:8c:90:cd:bf:b6:3a:
e1:49:2e:22:57:0c:23:3d:d4:4f:ba:26:23:60:47:
71:11:f8:91:33:5c:5d:99:08:ff:fc:9b:d3:f6:cf:
7d:44:08:5e:f9:80:41:4c:32:45:70:5d:85:27:3e:
37:5e:c8:e2:75:cb:2f:36:14:ff:42:72:d4:22:4e:
6f:e4:8b:41:1f:70:be:49:dc:a7:e1:e5:3b:b4:5d:
17:11:a9:55:ae:64:47:f3:83:8e:e1:40:15:f1:03:
79:8f:93:88:c1:d6:b5:f2:41:59:72:c3:ab:bd:67:
13:37:ed:03:0e:a1:71:3d:00:c6:ed:12:65:cf:72:
0c:d7:50:24:3d:b4:cd:fc:35:bf:28:6e:dd:f0:99:
55:dd:e3:c7:14:74:a1:8f:91:09:b2:b4:27:62:b5:
96:f8:16:49:a6:3d:b6:bd:14:e0:1b:bb:06:06:d4:
5a:e0:96:4e:74:3f:f2:36:c4:91:00:05:31:22:22:
ce:e6:bd:77:c5:a2:c6:c3:53:15:b0:24:58:ea:e6:
66:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CA:3B:F2:A3:F2:56:6D:81:1A:EC:1E:9D:8E:63:E6:C5:43:D5:F4
X509v3 Authority Key Identifier:
keyid:3A:DB:B4:75:A4:30:4C:84:53:43:FD:94:FE:E9:A6:B8:80:08:E3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:16:df:02:7d:b8:34:a3:08:a5:a5:42:b5:7f:4b:f8:73:41:
fa:2f:88:bc:99:3a:7b:51:cd:48:d3:48:07:7b:5f:67:60:43:
66:d9:a7:00:b1:b5:97:ac:aa:a4:a2:f4:48:8e:3b:07:09:a0:
29:ee:dc:77:fc:68:00:31:39:d9:8c:71:df:90:2c:c4:a3:93:
2f:76:f0:ec:c4:3e:4e:91:0a:ba:94:c0:e4:7a:3e:98:58:1d:
3f:ad:8c:6a:b4:31:bb:fa:45:be:04:85:5c:1c:bf:e0:93:c7:
be:7b:24:5b:55:ea:7a:42:51:74:b1:d4:8f:e8:56:ab:1b:db:
5e:04:b1:24:e5:55:02:d8:d3:0e:56:ef:48:93:ed:9a:15:de:
67:22:76:8e:99:43:ad:e5:69:d5:60:bc:45:c9:87:9a:a9:51:
27:72:75:9f:1e:62:4b:ad:6e:84:13:48:fe:fc:bc:4e:15:d9:
27:b7:4c:58:9b:d6:7a:17:fe:bd:05:8b:ba:0e:34:a4:df:92:
96:69:e7:f6:73:21:63:24:fc:88:26:f9:21:1b:e5:32:35:36:
df:0c:64:e2:64:55:13:89:d7:3a:15:43:b6:19:07:3c:66:4d:
4a:d2:60:f0:a3:fd:12:36:10:96:a4:7b:02:01:c8:1f:be:67:
af:d0:5d:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+uTBP82sbtI/ztWJpM+hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZGJiNDc1YTQzMDRjODQ1MzQzZmQ5NGZlZTlhNmI4ODAw
OGUzOGIwHhcNMjUwOTA3MDcwMTMxWhcNMjUwOTA4MDcwMTMxWjAzMTEwLwYDVQQD
EygwMGNhM2JmMmEzZjI1NjZkODExYWVjMWU5ZDhlNjNlNmM1NDNkNWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk9jHjPsUT1uFmUEZ65/IAvzhBIvo
g2fZVeWN8r9ZPN/fCyOnDMA9ou/jQNUPv4L6gEQY+K+MkM2/tjrhSS4iVwwjPdRP
uiYjYEdxEfiRM1xdmQj//JvT9s99RAhe+YBBTDJFcF2FJz43XsjidcsvNhT/QnLU
Ik5v5ItBH3C+Sdyn4eU7tF0XEalVrmRH84OO4UAV8QN5j5OIwda18kFZcsOrvWcT
N+0DDqFxPQDG7RJlz3IM11AkPbTN/DW/KG7d8JlV3ePHFHShj5EJsrQnYrWW+BZJ
pj22vRTgG7sGBtRa4JZOdD/yNsSRAAUxIiLO5r13xaLGw1MVsCRY6uZmWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFADKO/Kj8lZtgRrsHp2OY+bFQ9X0MB8GA1UdIwQY
MBaAFDrbtHWkMEyEU0P9lP7ppriACOOLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yMjY5MjctZDY1Ni00YjkxLWE5OTAt
MGNlMDQ5NmE5OTdiLzEvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8yMjY5MjctZDY1Ni00YjkxLWE5OTAtMGNlMDQ5NmE5OTdi
LzEvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYRbfAn24
NKMIpaVCtX9L+HNB+i+IvJk6e1HNSNNIB3tfZ2BDZtmnALG1l6yqpKL0SI47Bwmg
Ke7cd/xoADE52Yxx35AsxKOTL3bw7MQ+TpEKupTA5Ho+mFgdP62MarQxu/pFvgSF
XBy/4JPHvnskW1XqekJRdLHUj+hWqxvbXgSxJOVVAtjTDlbvSJPtmhXeZyJ2jplD
reVp1WC8RcmHmqlRJ3J1nx5iS61uhBNI/vy8ThXZJ7dMWJvWehf+vQWLug40pN+S
lmnn9nMhYyT8iCb5IRvlMjU23wxk4mRVE4nXOhVDthkHPGZNStJg8KP9EjYQlqR7
AgHIH75nr9Bdlg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 09:53:58 2025 by rpki-client